DNS Forwarders

  • Thread starter Thread starter Mark Clout
  • Start date Start date
M

Mark Clout

Hello!

Currently, every client in our organization has our 3 active directory
integrated DNS server IP addresses, as well as our external DNS server
address for Internet queries. Each client's setup looks something like:

172.16.1.1
172.16.1.2
172.16.3
199.212.44.230

My question is...would it be better to strip out the 199 IP address and use
Forwarders on the internal DNS servers to point to our external DNS server,
or just leave it as is?

I ask because one of our servers seems to want to use the 199 IP address to
resolve internal queries, which it can't, even though the 199 IP address is
listed last in sequential order.

Thanks for any advice.

Mark
 
Mark said:
Hello!

Currently, every client in our organization has our 3 active directory
integrated DNS server IP addresses, as well as our external DNS server
address for Internet queries. Each client's setup looks something
like:

172.16.1.1
172.16.1.2
172.16.3
199.212.44.230

My question is...would it be better to strip out the 199 IP address
and use Forwarders on the internal DNS servers to point to our
external DNS server, or just leave it as is?
Click to expand...

Get rid of the ISP's DNS server reference in all IP configs, everywhere. All
servers and workstations should specify *only* the internal AD-integrated
DNS server's IP address in their network settings. The AD-integrated DNS
server should be set up with forwarders to your ISP's DNS servers for
external resolution. See
http://support.microsoft.com/default.aspx?scid=kb;en-us;300202 for more
info.
 
In
Mark Clout said:
Hello!

Currently, every client in our organization has our 3 active directory
integrated DNS server IP addresses, as well as our external DNS server
address for Internet queries. Each client's setup looks something
like:

172.16.1.1
172.16.1.2
172.16.3
199.212.44.230

My question is...would it be better to strip out the 199 IP address
and use Forwarders on the internal DNS servers to point to our
external DNS server, or just leave it as is?
Click to expand...

Remove the 199 IP and use it as a forwarder, not only is it better, it is
required. Do not use an external DNS on any member of an AD domain in TCP/IP
properties.
 
Back
Top